Dismiss Notice
We would like to remind you that we’re updating our login process for all 3CX forums whereby you will be able to login with the same credentials you use for the Partner or Customer Portal. Click here to read more.

v15 Security

Discussion in '3CX Phone System - General' started by cobaltit, Jul 12, 2016.

Thread Status:
Not open for further replies.
  1. cobaltit

    cobaltit Well-Known Member

    Joined:
    Mar 22, 2012
    Messages:
    1,590
    Likes Received:
    239
    SRTP is being advertised but that was already there and is practically useless without TLS which is still a PITA to setup. It would be nice to see the Let's Encrypt integration also handle the SIP TLS/Secure SIP setup. A PBX that is hacked can run up a few thousand dollars in usage before it is noticed but someone could listen/record VoIP traffic for months and no one would know.

    And while you are making that Let's Encrypt magic happen for Secure SIP/TLS please change the wording from 'API Key' to 'Private Key'.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. roadwings

    Joined:
    May 16, 2015
    Messages:
    49
    Likes Received:
    14
    Agreed. What exactly is that certificate for again? Just the administrator web console? Any way to get every service secured with one cert?
     
Thread Status:
Not open for further replies.